Overview

overview

10

Static

static

3

063c8a92ff...in.exe

windows7-x64

10

063c8a92ff...in.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    063c8a92ff9cc389bef539925d2e7bea5b7deed9367e0cf7c0b0d77818f813b9.bin.bin

  • Size

    410KB

  • Sample

    230501-sdphgsgc99

  • MD5

    18fd02253cbb15a6698033600f616fd6

  • SHA1

    bcd7a77d2f69ec8c4479d4bc0643c4aa73852d04

  • SHA256

    063c8a92ff9cc389bef539925d2e7bea5b7deed9367e0cf7c0b0d77818f813b9

  • SHA512

    c4d3f789c40162b7635579e1cd934b9d37a072ad1ee185163425289321e88216d0cf2e1d39a1de3908127bb754d8ba2c0cb1c6a3e2f4dd99e134847598bf93f2

  • SSDEEP

    6144:dZ+EUuimQIHVIAEfowJMTyDoGcH2npdwPKfq4:dZ+3uimQI1IfmgojWpdwi

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      063c8a92ff9cc389bef539925d2e7bea5b7deed9367e0cf7c0b0d77818f813b9.bin.bin

    • Size

      410KB

    • MD5

      18fd02253cbb15a6698033600f616fd6

    • SHA1

      bcd7a77d2f69ec8c4479d4bc0643c4aa73852d04

    • SHA256

      063c8a92ff9cc389bef539925d2e7bea5b7deed9367e0cf7c0b0d77818f813b9

    • SHA512

      c4d3f789c40162b7635579e1cd934b9d37a072ad1ee185163425289321e88216d0cf2e1d39a1de3908127bb754d8ba2c0cb1c6a3e2f4dd99e134847598bf93f2

    • SSDEEP

      6144:dZ+EUuimQIHVIAEfowJMTyDoGcH2npdwPKfq4:dZ+3uimQI1IfmgojWpdwi

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks